Changeset 532
- Timestamp:
- Feb 15, 2010, 12:42:07 AM (14 years ago)
- File:
-
- 1 edited
Legend:
- Unmodified
- Added
- Removed
-
trunk/puppet/modules/puppet-openldap/templates/slapd.conf_slave.erb
r500 r532 8 8 include /etc/ldap/schema/core.schema 9 9 include /etc/ldap/schema/cosine.schema 10 include /etc/ldap/schema/nis.schema10 #include /etc/ldap/schema/nis.schema 11 11 include /etc/ldap/schema/inetorgperson.schema 12 12 <% if has_variable?("ldap_smb") -%> 13 13 include /etc/ldap/schema/samba.schema 14 14 <% end -%> 15 include /etc/ldap/schema/authldap.schema 15 #include /etc/ldap/schema/authldap.schema 16 17 include /etc/ldap/schema/rfc2307bis.schema 18 include /etc/ldap/schema/mozillaabpersonalpha.schema 19 include /etc/ldap/schema/evolutionperson.schema 20 16 21 17 22 # Schema check allows for forcing entries to … … 27 32 28 33 # Read slapd.conf(5) for possible values 29 loglevel 034 loglevel 16384 30 35 31 36 # to use ldapsearch … … 61 66 bindmethod=simple 62 67 binddn="cn=<%= ldap_slave %>,<%= ldap_base %>" 63 credentials= <%= ldap_admin_password%>"68 credentials="<%= ldap_slave_credentials %>" 64 69 <% end -%> 65 70 … … 68 73 69 74 # Indexing options for database #1 70 index uid,uidNumber,gidNumber,memberUid eq 71 index cn,mail,surname,givenname eq,subinitial 75 #index uid,uidNumber,gidNumber,memberUid eq 76 index mail,surname,givenname eq,subinitial 77 # Indexing options for database #1 78 index objectClass eq 79 index uid pres,eq 80 index gidNumber pres,eq 81 index uidNumber pres,eq 82 index memberUid pres,eq 83 index cn pres,eq 84 index entryCSN,entryUUID eq 85 72 86 <% if has_variable?("ldap_smb") -%> 73 87 index sambaSID eq … … 104 118 # # want SASL (and possible other things) to work 105 119 # # happily. 106 access to dn.base="" by * read120 #access to dn.base="" by * read 107 121 108 122 # The admin dn has full write access, everyone else 109 123 # can read everything. 110 access to *111 by dn="cn=admin,<%= ldap_base %>" write112 by * read124 #access to * 125 # by dn="cn=admin,<%= ldap_base %>" write 126 # by * read 113 127 114 128 <% if has_variable?("ldap_ssl") -%>
Note: See TracChangeset
for help on using the changeset viewer.